2 matches found
CVE-2018-15477
The CVE set concerns myStrom WiFi Switch family with multiple issues in 2018. CVE-2018-15477 (and related CVEs 15476–15480) describe: a command-injection and OS-command execution risk in MyStrom devices where an unsanitized cloud parameter could be used to run commands on the device; affected: my...
CVE-2018-15477
myStrom WiFi Switch V1 devices before 2.66 did not sanitize a parameter received from the cloud that was used in an OS command. Malicious servers were able to run operating system commands on the device...